https://www.mdu.se/

mdu.sePublications
Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Automotive Software Security Engineering based on the ISO 21434
Technische Hochschule Nürnberg, Germany. (DPAC)ORCID iD: 0000-0002-2941-7948
Technische Hochschule Nürnberg, Germany.ORCID iD: 0000-0002-7470-3767
2023 (English)In: ACM Conference Proceedings, Tokyo: Association for Computing Machinery (ACM), 2023Conference paper, Published paper (Refereed)
Abstract [en]

The increasing use of software and connectivity in modern vehicles has made cybersecurity an important issue in the automotive industry. ISO 21434 is a standard for automotive cybersecurity engineering that provides guidelines for the development and validation of secure automotive systems. For effective implementation and practical use of ISO 21434, it must be incorporated into existing automotive industry development workflows.

In this paper, we investigate the practical applicability of ISO 21434 in the context of the Security Abstraction Model (SAM), a security modeling approach for the domain-specific modeling language EAST-ADL, and provide insights into the benefits and consequences of this approach. In doing so, we describe the methodological opportunities of integrating ISO 21434 into SAM on the one hand and present a case study illustrating the application of this integrated approach in the development of a secure automotive system on the other hand. Our results suggest that the integration of ISO 21434 into SAM better supports automotive system security in the early development phases and makes it transparent to a wide range of stakeholders. At the same time, it becomes clear that a representation of the interrelationships in the form of a metamodel, in contrast to ISO 21434 in which these are only described textually, significantly improves conceptual understanding and ultimately enables pragmatic usability in industrial development.

Place, publisher, year, edition, pages
Tokyo: Association for Computing Machinery (ACM), 2023.
National Category
Software Engineering
Identifiers
URN: urn:nbn:se:mdh:diva-62919ISBN: 979-8-4007-0805-3 (print)OAI: oai:DiVA.org:mdh-62919DiVA, id: diva2:1763605
Conference
5th World Symposium on Software Engineering (WSSE 2023)
Available from: 2023-06-07 Created: 2023-06-07 Last updated: 2023-06-08Bibliographically approved

Open Access in DiVA

No full text in DiVA

Authority records

Bergler, Matthias

Search in DiVA

By author/editor
Bergler, MatthiasTavakoli Kolagari, Ramin
Software Engineering

Search outside of DiVA

GoogleGoogle Scholar

isbn
urn-nbn

Altmetric score

isbn
urn-nbn
Total: 147 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf